CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1097 advisory. Requests is a HTTP library. Due to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credentials to third parties for specific maliciously-crafted URLs. Users should upgra...

6.1CVSS6.9AI score0.00846EPSS

Exploits2References6

NVD•added 2025/06/11 6:15 p.m.•15 views

CVE-2025-40912

CryptX for Perl before version 0.065 contains a dependency that may be susceptible to malformed unicode. CryptX embeds the tomcrypt library. The versions of that library in CryptX before 0.065 may be susceptible to CVE-2019-17362...

9.8CVSS0.00351EPSS

Exploits0References1

OSV•added 2024/12/16 2:5 p.m.•13 views

BIT-NODE-MIN-2021-22931

Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to Remote Code Execution, XSS, Application crashes due to missing input validation of host names returned by Domain Name Servers in Node.js dns library which can lead to output of wrong hostnames leading to Domain Hijacking and injection...

9.8CVSS10AI score0.21952EPSS

Exploits1References10

Huntr•added 2022/04/06 12:1 a.m.•39 views

XSS vulnerability with default `onCellHtmlData` function

Description If you can jam some nasty code into a table-cell, you can force this script to perform arbitrary javascript when someone tries to export the table using this library. An example used against us was: " It looks like, if you don't specify an onCellHtmlData function, the default one is...

3.5CVSS5.9AI score0.00723EPSS

Exploits1References1

ThreatPost•added 2009/10/15 2:9 p.m.•100 views

Microsoft Finally Shuts Door on ATL Bugs

Computerworld’s Gregg Keizer brings word that this week’s record-setting batch of patches from Microsoft actually closed the book on the vexing ATL code library issues that first surfaced in July 2009. Keizer quotes Ryan Smith, one of the hackers credited with discovering the flaw, as saying that...

9.3CVSS1.2AI score0.99945EPSS

Exploits33References2

Gentoo Linux•added 2004/12/05 12:0 a.m.•40 views

PDFlib: Multiple overflows in the included TIFF library

Background PDFlib is a library providing functions to handle PDF files. It includes a modified TIFF library used to process TIFF images. Description The TIFF library is subject to several known vulnerabilities see GLSA 200410-11. Most of these overflows also apply to PDFlib. Impact A remote...

7.5CVSS7.1AI score0.08268EPSS

Exploits1

Tenable Nessus•added 2004/08/30 12:0 a.m.•39 views

GLSA-200405-04 : OpenOffice.org vulnerability when using DAV servers

The remote host is affected by the vulnerability described in GLSA-200405-04 OpenOffice.org vulnerability when using DAV servers OpenOffice.org includes code from the Neon library in functions related to publication on WebDAV servers. This library is vulnerable to several format string attacks...

6.8CVSS6.1AI score0.11056EPSS

Exploits0References3

securityvulns•added 2003/01/08 12:0 a.m.•26 views

[INetCop Security Advisory] Buffer Overflow vulnerability in HTTP Fetcher Library.

======================================== INetCop Security Advisory 2003-0x82-011 ======================================== Title: Buffer Overflow vulnerability in HTTP Fetcher Library. 0x01. Description HTTP Fetcher is a small library that downloads files via HTTP. More detailed information is...

7.5AI score

Exploits0

securityvulns•added 2002/06/18 12:0 a.m.•28 views

nCipher problems

Weak key generation during installation, problems with java library...

2.4AI score

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by